CVE-2009-0549

Name of the Vulnerable Software and Affected Versions Microsoft Office Excel versions in Microsoft Office 2000 SP3, Office XP SP3, Office 2003 SP3 Microsoft Office Excel versions in Office 2004 and 2008 for Mac Open XML File Format Converter for Mac Microsoft Office Excel Viewer 2003 SP3

Description A remote code execution issue exists in Microsoft Office Excel, allowing attackers to execute arbitrary code via a crafted Excel file with a malformed record object. This could enable an attacker to take complete control of an affected system, install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Office Excel versions in Microsoft Office 2000 SP3, update to a newer version to mitigate the risk. For Microsoft Office Excel versions in Office XP SP3, update to a newer version to mitigate the risk. For Microsoft Office Excel versions in Office 2003 SP3, update to a newer version to mitigate the risk. For Microsoft Office Excel versions in Office 2004 and 2008 for Mac, update to a newer version to mitigate the risk. For Open XML File Format Converter for Mac, update to a newer version to mitigate the risk. For Microsoft Office Excel Viewer 2003 SP3, update to a newer version to mitigate the risk.